← Back

Emc

emc

413 CVEs • 186 products

Products (186)

Click to collapse
Toggle
Rsa Authentication Manager
rsa_authentication_manager
25 CVEs
Rsa Archer Egrc
rsa_archer_egrc
23 CVEs
Documentum Content Server
documentum_content_server
21 CVEs
Networker
networker
20 CVEs
Isilon Onefs
isilon_onefs
15 CVEs
Documentum Webtop
documentum_webtop
13 CVEs
Avamar Server
avamar_server
13 CVEs
Documentum Taskspace
documentum_taskspace
12 CVEs
Documentum D2
documentum_d2
12 CVEs
Rsa Identity Management And Governance
rsa_identity_management_and_governance
11 CVEs
Documentum Administrator
documentum_administrator
10 CVEs
Avamar
avamar
10 CVEs
Rsa Adaptive Authentication On Premise
rsa_adaptive_authentication_on-premise
10 CVEs
Documentum Wdk
documentum_wdk
10 CVEs
Vipr Srm
vipr_srm
10 CVEs
Data Protection Advisor
data_protection_advisor
9 CVEs
Secure Remote Services
secure_remote_services
8 CVEs
Recoverpoint For Virtual Machines
recoverpoint_for_virtual_machines
8 CVEs
Rsa Identity Governance And Lifecycle
rsa_identity_governance_and_lifecycle
8 CVEs
Legato Networker
legato_networker
7 CVEs
Documentum Eroom
documentum_eroom
7 CVEs
Rsa Archer Smartsuite
rsa_archer_smartsuite
7 CVEs
Recoverpoint
recoverpoint
7 CVEs
Smarts Network Configuration Manager
smarts_network_configuration_manager
6 CVEs
Documentum Digital Asset Manager
documentum_digital_asset_manager
6 CVEs
Document Sciences Xpression
document_sciences_xpression
6 CVEs
Vplex Geosynchrony
vplex_geosynchrony
6 CVEs
Replication Manager
replication_manager
5 CVEs
Documentum Capital Projects
documentum_capital_projects
5 CVEs
Documentum Web Publisher
documentum_web_publisher
5 CVEs
Watch4net
watch4net
5 CVEs
Rsa Data Loss Prevention
rsa_data_loss_prevention
5 CVEs
Appsync
appsync
5 CVEs
Rsa Certificate Manager
rsa_certificate_manager
5 CVEs
Scaleio
scaleio
5 CVEs
Replistor
replistor
4 CVEs
Autostart
autostart
4 CVEs
Rsa Authentication Agent
rsa_authentication_agent
4 CVEs
Alphastor
alphastor
4 CVEs
Documentum Records Manager
documentum_records_manager
4 CVEs
Avamar Server Virtual Edition
avamar_server_virtual_edition
4 CVEs
Rsa Security Analytics
rsa_security_analytics
4 CVEs
Sourceone Email Supervisor
sourceone_email_supervisor
4 CVEs
Rsa Security Sitekey
rsa_security_sitekey
3 CVEs
Diskxtender
diskxtender
3 CVEs
Sourceone Email Management
sourceone_email_management
3 CVEs
Cloud Tiering Appliance
cloud_tiering_appliance
3 CVEs
Networker Module For Microsoft Applications
networker_module_for_microsoft_applications
3 CVEs
Rsa Data Protection Manager Appliance
rsa_data_protection_manager_appliance
3 CVEs
Rsa Bsafe Ssl J
rsa_bsafe_ssl-j
3 CVEs
Rsa Registration Manager
rsa_registration_manager
3 CVEs
Unisphere
unisphere
3 CVEs
Rsa Archer Grc
rsa_archer_grc
3 CVEs
Documentum Xcp
documentum_xcp
3 CVEs
Solutions Enabler
solutions_enabler
3 CVEs
Vnx2 Firmware
vnx2_firmware
3 CVEs
Vnx1 Firmware
vnx1_firmware
3 CVEs
Integrated Data Protection Appliance
integrated_data_protection_appliance
3 CVEs
Eroom
eroom
2 CVEs
Navisphere Manager
navisphere_manager
2 CVEs
Retrospect
retrospect
2 CVEs
Vmware
vmware
2 CVEs
Control Center
control_center
2 CVEs
Networker Module
networker_module
2 CVEs
Captiva Einput
captiva_einput
2 CVEs
Documentum Information Rights Management
documentum_information_rights_management
2 CVEs
It Operations Intelligence
it_operations_intelligence
2 CVEs
Rsa Netwitness Informer
rsa_netwitness_informer
2 CVEs
Atmos
atmos
2 CVEs
Connectrix Manager
connectrix_manager
2 CVEs
Documentum Foundation Services
documentum_foundation_services
2 CVEs
Cloud Tiering Appliance Software
cloud_tiering_appliance_software
2 CVEs
Rsa Netwitness
rsa_netwitness
2 CVEs
Digital Assets Manager
digital_assets_manager
2 CVEs
Engineering Plant Facilities Management Solution For Documentum
engineering_plant_facilities_management_solution_for_documentum
2 CVEs
Task Space
task_space
2 CVEs
Web Publishers
web_publishers
2 CVEs
Isilon Insightiq
isilon_insightiq
2 CVEs
Powerpath Virtual Appliance
powerpath_virtual_appliance
2 CVEs
Data Domain Os
data_domain_os
2 CVEs
Avamar Data Store
avamar_data_store
2 CVEs
Esrs Policy Manager
esrs_policy_manager
2 CVEs
Archer Grc Platform
archer_grc_platform
2 CVEs
Rsa Archer
rsa_archer
2 CVEs
Rsa Bsafe Crypto C
rsa_bsafe_crypto-c
2 CVEs
Retrospect Client
retrospect_client
1 CVE
Vmware Server
vmware_server
1 CVE
Dantz Retrospect Backup Server
dantz_retrospect_backup_server
1 CVE
Centera Universal Access
centera_universal_access
1 CVE
Networker Client
networker_client
1 CVE
Networker Powersnap
networker_powersnap
1 CVE
Networker Server
networker_server
1 CVE
Networker Storage Node
networker_storage_node
1 CVE
Vmware Player
vmware_player
1 CVE
Captiva Pixtools Distributed Imaging
captiva_pixtools_distributed_imaging
1 CVE
Documentum Applicationxtender
documentum_applicationxtender
1 CVE
Documentum Applicationxtender Workflow Manager
documentum_applicationxtender_workflow_manager
1 CVE
Homebase Server
homebase_server
1 CVE
Rsa Key Manager Client
rsa_key_manager_client
1 CVE
Disk Library
disk_library
1 CVE

CVEs (413)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-0626
2Dell
Emc
2Bsafe Ssl J
Rsa Bsafe Ssl J
Apr 29, 2026
Feb 18, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it easier for remote attackers to bypass intended cryptographic protection mechanisms by triggering application-data proce...Show more
The (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 make it easier for remote attackers to bypass intended cryptographic protection mechanisms by triggering application-data processing during the TLS handshake, a time at which the data is both unencrypted and unauthenticated.Show less
CVE-2014-0625
2Dell
Emc
2Bsafe Ssl J
Rsa Bsafe Ssl J
Apr 29, 2026
Feb 18, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) by triggering applica...Show more
The SSLSocket implementation in the (1) JSAFE and (2) JSSE APIs in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to cause a denial of service (memory consumption) by triggering application-data processing during the TLS handshake, a time at which the data is internally buffered.Show less
CVE-2014-0622
1Emc
1Documentum Foundation Services
Apr 29, 2026
Feb 6, 2014
N/A· v4
N/A· v3
9.0 HIGH· v2
The web service in EMC Documentum Foundation Services (DFS) 6.5 through 6.7 before 6.7 SP1 P22, 6.7 SP2 before P08, 7.0 before P12, and 7.1 before P01 does not properly implement content uploading, which allows remote au...Show more
The web service in EMC Documentum Foundation Services (DFS) 6.5 through 6.7 before 6.7 SP1 P22, 6.7 SP2 before P08, 7.0 before P12, and 7.1 before P01 does not properly implement content uploading, which allows remote authenticated users to bypass intended content access restrictions via unspecified vectors.Show less
CVE-2013-6182
1Emc
1Replication Manager
Apr 29, 2026
Dec 28, 2013
N/A· v4
N/A· v3
7.2 HIGH· v2
Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory.
CVE-2013-6181
1Emc
1Watch4net
Apr 29, 2026
Dec 28, 2013
N/A· v4
N/A· v3
2.1 LOW· v2
EMC Watch4Net before 6.3 stores cleartext polled-device passwords in the installation repository, which allows local users to obtain sensitive information by leveraging repository privileges.
CVE-2013-6178
1Emc
1Rsa Archer Egrc
Apr 29, 2026
Dec 19, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer GRC 5.x before 5.4 SP1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-6810
1Emc
1Connectrix Manager
Apr 29, 2026
Dec 12, 2013
N/A· v4
N/A· v3
10.0 HIGH· v2
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute a...Show more
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.Show less
CVE-2013-6180
1Emc
2Rsa Netwitness Nextgen
Rsa Security Analytics
Apr 29, 2026
Dec 9, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended access restrictions...Show more
EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended access restrictions by sending a Core request from a web browser or other unintended user agent.Show less
CVE-2013-3288
1Emc
1Rsa Data Protection Manager Appliance
Apr 29, 2026
Nov 22, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability on the EMC RSA Data Protection Manager (DPM) appliance 3.2.x before 3.2.4.2 and 3.5.x before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...Show more
Cross-site scripting (XSS) vulnerability on the EMC RSA Data Protection Manager (DPM) appliance 3.2.x before 3.2.4.2 and 3.5.x before 3.5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.Show less
CVE-2013-6177
1Emc
1Document Sciences Xpression
Apr 29, 2026
Nov 21, 2013
N/A· v4
N/A· v3
3.5 LOW· v2
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise...Show more
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary files by leveraging xDashboard access.Show less
CVE-2013-6176
1Emc
1Document Sciences Xpression
Apr 29, 2026
Nov 21, 2013
N/A· v4
N/A· v3
6.5 MEDIUM· v2
Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enter...Show more
Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute arbitrary SQL commands via unspecified input to a (1) xAdmin or (2) xDashboard form.Show less
CVE-2013-6175
1Emc
1Document Sciences Xpression
Apr 29, 2026
Nov 21, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engi...Show more
Multiple cross-site scripting (XSS) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject arbitrary web script or HTML via unspecified input to a (1) xAdmin or (2) xDashboard form.Show less
CVE-2013-6174
1Emc
1Document Sciences Xpression
Apr 29, 2026
Nov 21, 2013
N/A· v4
N/A· v3
5.8 MEDIUM· v2
Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine,...Show more
Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.Show less
CVE-2013-6173
1Emc
1Document Sciences Xpression
Apr 29, 2026
Nov 21, 2013
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publi...Show more
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to hijack the authentication of administrators for requests that perform administrative actions in (1) xAdmin or (2) xDashboard.Show less
CVE-2013-3286
1Emc
1Documentum Eroom
Apr 29, 2026
Nov 6, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom before 7.4.4 P11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL.
CVE-2013-3281
1Emc
7Documentum Administrator
Documentum Capital ProjectsDocumentum Digital Asset Manager+4 more
Apr 29, 2026
Nov 6, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum...Show more
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.Show less
CVE-2013-3285
1Emc
1Networker
Apr 29, 2026
Nov 2, 2013
N/A· v4
N/A· v3
3.5 LOW· v2
The NetWorker Management Console (NMC) in EMC NetWorker 8.0.x before 8.0.2.3, when using Active Directory/LDAP for authentication, allows remote authenticated users to discover cleartext administrator passwords via (1) u...Show more
The NetWorker Management Console (NMC) in EMC NetWorker 8.0.x before 8.0.2.3, when using Active Directory/LDAP for authentication, allows remote authenticated users to discover cleartext administrator passwords via (1) unspecified NMC audit reports or (2) requests to RAP resources.Show less
CVE-2013-3280
1Emc
1Rsa Authentication Agent
Apr 29, 2026
Oct 25, 2013
N/A· v4
N/A· v3
7.5 HIGH· v2
EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent cra...Show more
EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent crash.Show less
CVE-2013-3279
1Emc
1Atmos
Apr 29, 2026
Oct 16, 2013
N/A· v4
N/A· v3
5.0 MEDIUM· v2
EMC Atmos before 2.1.4 has a blank password for the PostgreSQL account, which allows remote attackers to obtain sensitive administrative information via a database-server connection.
CVE-2013-3278
1Emc
4Geosynchrony
Vplex GeoVplex Local+1 more
Apr 29, 2026
Oct 1, 2013
N/A· v4
N/A· v3
4.9 MEDIUM· v2
EMC VPLEX before VPLEX GeoSynchrony 5.2 SP1 uses cleartext for storage of the LDAP/AD bind password, which allows local users to obtain sensitive information by reading the management-server configuration file.